Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/49da7b6a-4e1a-41ff-b8eb-8c364cd264b1/0/3130332e37372e3230352e302f32342d3234203d3e203634323937.roa
File: 3130332e37372e3230352e302f32342d3234203d3e203634323937.roa (raw, json)
Hash identifier: NZ3zgpSngsIOBUBuxKD8qjF4IFrIt5WPsm16vJBokXQ=
Subject key identifier: 7B:9F:97:43:F8:7C:30:10:B5:17:EA:48:19:13:A0:2B:61:82:2E:CE
Certificate issuer: /CN=A7D1BD82113CD720C572AF99A8FB2940610AEC49
Certificate serial: 3C3E767939911439483D6F88EADE5D73C9FF87C2
Authority key identifier: A7:D1:BD:82:11:3C:D7:20:C5:72:AF:99:A8:FB:29:40:61:0A:EC:49
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A7D1BD82113CD720C572AF99A8FB2940610AEC49.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/49da7b6a-4e1a-41ff-b8eb-8c364cd264b1/0/3130332e37372e3230352e302f32342d3234203d3e203634323937.roa
Signing time: Sat 08 Mar 2025 04:00:01 +0000
ROA not before: Sat 08 Mar 2025 03:55:01 +0000
ROA not after: Sat 07 Mar 2026 04:00:01 +0000
asID: 64297
IP address blocks: 103.77.205.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:3e:76:79:39:91:14:39:48:3d:6f:88:ea:de:5d:73:c9:ff:87:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A7D1BD82113CD720C572AF99A8FB2940610AEC49
Validity
Not Before: Mar 8 03:55:01 2025 GMT
Not After : Mar 7 04:00:01 2026 GMT
Subject: CN=7B9F9743F87C3010B517EA481913A02B61822ECE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:90:d2:93:b1:9e:c4:fc:a8:4c:16:2f:c3:b2:
3c:c6:60:a2:b4:c5:df:18:a9:3d:61:c4:14:35:f2:
6e:75:a4:07:c3:f5:54:fe:61:90:95:0d:73:18:66:
07:5b:a8:45:50:13:da:8a:56:a4:ad:47:81:9f:70:
c4:9a:76:46:fa:d4:35:58:ba:7f:24:72:5d:59:9d:
91:4f:fe:e7:85:be:99:d2:a4:fd:53:d6:ff:e0:92:
90:de:31:f9:10:1d:2f:c3:fc:14:1f:b4:73:98:40:
28:96:2e:df:f2:50:17:ee:57:5b:34:96:0e:9c:94:
a4:4d:7a:10:3d:6f:e6:2f:ba:37:94:eb:a6:56:47:
d3:36:50:3d:94:64:64:f7:ea:b8:ef:94:9d:16:74:
5d:17:11:cc:bd:0d:57:18:8a:c8:43:80:52:82:52:
ff:28:8d:ac:c7:fc:2c:55:c0:58:6a:b9:5c:c1:e4:
b0:80:bd:f5:67:13:94:68:57:68:5a:13:08:f0:c5:
55:f0:3e:f1:ff:d9:d1:00:3e:d7:47:23:1c:6d:58:
4b:91:d8:0f:8f:55:b2:24:32:fe:c5:e9:57:71:ad:
bf:56:f5:67:20:0f:59:10:b0:29:a2:7b:df:6e:a9:
ee:17:bd:36:0f:f1:1d:e9:12:39:b7:76:25:1b:53:
7f:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:9F:97:43:F8:7C:30:10:B5:17:EA:48:19:13:A0:2B:61:82:2E:CE
X509v3 Authority Key Identifier:
keyid:A7:D1:BD:82:11:3C:D7:20:C5:72:AF:99:A8:FB:29:40:61:0A:EC:49
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/49da7b6a-4e1a-41ff-b8eb-8c364cd264b1/0/A7D1BD82113CD720C572AF99A8FB2940610AEC49.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A7D1BD82113CD720C572AF99A8FB2940610AEC49.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/49da7b6a-4e1a-41ff-b8eb-8c364cd264b1/0/3130332e37372e3230352e302f32342d3234203d3e203634323937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.77.205.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:d6:5d:e3:bc:ed:58:1e:b6:0a:29:04:d6:cd:15:2e:87:33:
85:92:17:71:3b:5a:b3:9e:f7:5f:c8:b7:c3:9d:bc:5e:91:93:
57:17:a5:c2:2b:c7:5a:94:d6:c9:dd:19:d2:d3:bd:72:fb:a9:
36:8d:dc:2b:08:56:16:17:80:10:77:ef:85:34:84:33:79:a0:
8b:f5:4c:19:e8:c0:5c:51:75:53:da:2c:24:a3:ce:27:e3:66:
53:a9:13:3f:53:6a:a8:ba:fc:bc:34:c4:03:90:4a:70:33:35:
3c:92:20:b9:cd:fe:95:0e:e9:20:cc:b2:ce:0f:60:3e:9c:d6:
2f:f4:eb:75:16:e1:34:ab:3f:c2:81:6f:c4:46:82:ad:5d:2b:
f8:e8:b1:6b:d5:93:c2:5c:f4:59:b5:eb:19:58:f8:3d:63:ec:
f9:36:eb:fe:61:e7:fa:ee:c8:de:5a:4a:86:9d:b7:b4:b2:56:
43:4b:b3:2a:2c:c1:87:5f:f7:7f:d4:7f:c9:55:e0:18:72:46:
65:76:7a:8c:24:87:5b:cd:41:6c:85:ed:c8:79:89:85:fe:3b:
a3:8a:7f:c8:f5:c9:fc:27:db:a3:8e:8a:93:f7:82:d0:2e:4d:
f4:5d:91:53:31:dd:14:99:2a:fc:e1:2f:a8:df:17:e1:e5:53:
1a:23:9c:e7
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUPD52eTmRFDlIPW+I6t5dc8n/h8IwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQTdEMUJEODIxMTNDRDcyMEM1NzJBRjk5QThGQjI5NDA2
MTBBRUM0OTAeFw0yNTAzMDgwMzU1MDFaFw0yNjAzMDcwNDAwMDFaMDMxMTAvBgNV
BAMTKDdCOUY5NzQzRjg3QzMwMTBCNTE3RUE0ODE5MTNBMDJCNjE4MjJFQ0UwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQkNKTsZ7E/KhMFi/DsjzGYKK0
xd8YqT1hxBQ18m51pAfD9VT+YZCVDXMYZgdbqEVQE9qKVqStR4GfcMSadkb61DVY
un8kcl1ZnZFP/ueFvpnSpP1T1v/gkpDeMfkQHS/D/BQftHOYQCiWLt/yUBfuV1s0
lg6clKRNehA9b+YvujeU66ZWR9M2UD2UZGT36rjvlJ0WdF0XEcy9DVcYishDgFKC
Uv8ojazH/CxVwFhquVzB5LCAvfVnE5RoV2haEwjwxVXwPvH/2dEAPtdHIxxtWEuR
2A+PVbIkMv7F6Vdxrb9W9WcgD1kQsCmie99uqe4XvTYP8R3pEjm3diUbU39/AgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUe5+XQ/h8MBC1F+pIGROgK2GCLs4wHwYDVR0j
BBgwFoAUp9G9ghE81yDFcq+ZqPspQGEK7EkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
OWRhN2I2YS00ZTFhLTQxZmYtYjhlYi04YzM2NGNkMjY0YjEvMC9BN0QxQkQ4MjEx
M0NENzIwQzU3MkFGOTlBOEZCMjk0MDYxMEFFQzQ5LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQTdEMUJEODIxMTNDRDcyMEM1NzJBRjk5QThGQjI5NDA2MTBB
RUM0OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ5ZGE3YjZhLTRlMWEtNDFmZi1i
OGViLThjMzY0Y2QyNjRiMS8wLzMxMzAzMzJlMzczNzJlMzIzMDM1MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzYzNDMyMzkzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdNzTANBgkqhkiG
9w0BAQsFAAOCAQEAbtZd47ztWB62CikE1s0VLoczhZIXcTtas573X8i3w528XpGT
VxelwivHWpTWyd0Z0tO9cvupNo3cKwhWFheAEHfvhTSEM3mgi/VMGejAXFF1U9os
JKPOJ+NmU6kTP1NqqLr8vDTEA5BKcDM1PJIguc3+lQ7pIMyyzg9gPpzWL/TrdRbh
NKs/woFvxEaCrV0r+Oixa9WTwlz0WbXrGVj4PWPs+Tbr/mHn+u7I3lpKhp23tLJW
Q0uzKizBh1/3f9R/yVXgGHJGZXZ6jCSHW81BbIXtyHmJhf47o4p/yPXJ/Cfbo46K
k/eC0C5N9F2RUzHdFJkq/OEvqN8X4eVTGiOc5w==
-----END CERTIFICATE-----
Generated at Mon Apr 7 16:54:48 2025 by rpki-client